検索:
ホーム   »     »   Microsoft Help Workshop .CNT files Buffer Overflow

Microsoft Help Workshop .CNT files Buffer Overflow

  • 投稿日:2007年1月19日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

Microsoft Help Workshop is vulnerable to a remote code execution exploit while processing malformed .cnt files.

A POC, made by porkythepig, has already been released and are already found in numerous sites like milw0rm.com.

The Microsoft Help Workshop is not included in the default installation of Microsoft Windows, it is however a standard component of MS Visual Studio v6 and 2003 (.NET) and if .cnt files are already associated with Help Workshop all that’s needed is for the user to double click the file, so please still be on the lookout for malwares exploiting this vulnerability.

Still, the best approach for this is user alertness, be wary of email attachments with the .cnt extension, and rather be wary of ALL email attachments especially if you’re not expecting any.

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.